Lead Application Security Engineer

• Lead threat modeling for new and existing applications to identify risks, recommend mitigations, and ensure control alignment with enterprise standards.
• Guide teams in secure design principles, validate adherence to security controls, and ensure threat models inform architectural decisions.
• Define and implement secure development lifecycle (SDLC) processes and tools—including SAST, SCA, and secret scanning—and drive adoption across development teams.
• Establish governance frameworks to ensure compliance with internal security policies, industry standards, and regulatory requirements.

This role strengthens secure development practices, architecture, and runtime environments across Apollo's diverse portfolio, making a meaningful impact within a global cybersecurity organization that is investing deeply in its people, processes, and technology.

• 10+ years of hands-on experience in Application Security, with a strong background in software development (IDE/CLI environments).
• Bachelor’s degree in Computer Science, Information Technology, Information Security, or a related field.
• Proven expertise with IDEs, version control systems, CI/CD pipeline management, secure SDLC practices, and SaaS-based security tools (SCA, SAST, DAST) as well as application inventory management.
• Strong understanding of application architecture, security controls, cloud environments, and penetration testing methodologies.

The base salary range is $190,000 - $250,000 USD. This position is also eligible for a discretionary annual bonus based on personal, team, and Firm performance. Compensation ranges are based on several factors including job function, level, and geographic location.

Apollo is a global team of alternative investment managers passionate about delivering uncommon value to investors and shareholders, with over 30 years of proven expertise across Private Equity, Credit and Real Estate, regions and industries.